Express 580 0/ FVSOOaD Express 580 Cy FV 80 Ob □□□□□□ Check Poi nt の RCM □ □ N3 F 巧 □ □ □ 

□ NSwth/^ication IrtelligenceD □□□□□□□□□□□□□□□□□□□□□□□□□凹 
D D D □ 

□ □□□□凹 FireVail-lO □□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 

□ □□□□□□□□□□□□□凹 


□ □□□□□□□□□□凹 
D □ D □ □ □ 

□ □ □DDDDDDDDDD 

Fi revaii-in nnnnnnnnnn (- 》 i) 


□ □ □□□□□□□□□□□□□□□凹 

Qjnnnnnnnnnnnnn (- の ) 


□ □□□□凹 
□ □□□□□凹 

nnnnnnnnnn (ssm n )(-》 荀 
nnnnnnnnnn (- 》 4) 


□ □ □□□□□□□凹 
□ □ □ D □ □ 

Fi reWI I - の□□□□□□□□□凹 

Firevai i-innnnnnnnnnnnnnnnnn ( が ) 


Fi revel I □□□□□□□凹 

Fi revaii-in nnnnnnnnnn (-》 旬 






















Configuring Licenses,.. 


Host Expiration Features 

Note: The recommended way of managing licenses is using SmartUpdate. 
cpconfig can be used to manage local licenses only on this machine. 

Do you want to add licenses (y/n) [n] ? y . 

Do you want to add licenses [M]anually or [F]etch from file : m .. 

IP Address : 202 . 247 . 5.126 
Expiration Date : 

Signature Key : 

SKU/Features : 

License was added successfully 
License will be put into kernel after cpstart 

Conriguring Administrators.., 


No VPN-1 & FireWall-1 Administrators are currently 
defined for this SmartCenter Server. 

Do you want to add administrators (y/n) [y] ? y . 

Administrator name : fws-admin 
Password: 

Verify Password : 

Permissions for all products (Read/[W]rite All, [R]ead Only All, 
[C]ustomized) w 

Permission to Manage Administrators ([Y]es, [N]o) y 

Administrator fws-admin was added successfully and has 
Read/Write Permission for all products with Permission to Manage 
Administrators 

Add another one (y/n) [n] ? n . 

















Configuring GUI Clients... 


GUI Clients are trusted hosts from which 

Administrators are allowed to log on to this SmartCenter Server 
using 机 indows/X—Motif GUI. 


No GUI Clients defined 

Do you want to add a GUI Client (y/n) [y] ? y 


You can add GUI Clients using any of the following formats : 
1.IP address. 

Machine name. 

"Any" - Any IP without restriction. 

A range of addresses, for example 丄 .2.3.4-1.2.3.40 
Wild cards 一 for example 1.2.3.* or *,checkpoint.com 


Please enter the list of hosts that will be GUI Clients, 

Enter GUI Client one per line, terminating with CTRL-D or your EOF 
character. 

192 . 168 . 1.99 . 

Is this correct (y/n) [y] ? y . 

Configuring Random Pool... 

You are now asked to perform a short random keystroke session. 

The random data collected in this session will be used in 
various cryptographic operations. 


Please enter random text containing at least six different 
characters. You will see the symbol after keystrokes that 

are too fast or too similar to preceding keystrokes. These 
keystrokes will be ignored. 


Please keep typing until you hear the beep and the bar is full. 

[ . ]. 

Thank you, 


① 


① が或□□□□□□□□□□□□□□□□□□□□□□□□□□凹 
③ □□□□□□□□□□□□□□□□□□□□□□□□□□ IPO □□□□□□□凹 

DDDimDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDD<trl><CfcOD 

DDDDDDDDD 

③ □□□□□□□□□□□□□□が創□□凹 
® □□□□□□□□□□□□□□□□□□□□凹 














Configuring Certificate Authority... 


The Internal CA will now be initialized 
with the following name : fws.nec ， co.jp 

Initializing the Internal CA...(may take several minutes) 

Internal Certificate Authority created successfully 
Certificate was created successfully 
Certificate Authority initialization ended successfully 

Check Point product Trial Period will expire in 15 days, 

Until then, you will be able to use the complete Check Point Product 
Suite. 

Trying to contact Certificate Authority. It might take a while... 
fws.nec.co.jp was successfully set to the Internal CA 

Done 


Conriguring Certiricate's Fingerprint... 


The following text is the fingerprint of this SmartCenter Server : 
ADD OX GAWK MUM LONG RISK CARD FERN LILY KEY JOKE FLOC 


Do you want to save it to a rile? (y/n) [n] ? n . 

generating INSPECT code for GUI Clients 
initial_management : 

Compiled OK. 

Hardening OS Security : Initial policy will be applied 
until the first policy is installed 


① 


In order to complete the installation 
you must reboot the machine. 

Do you want to reboot? {y/n) [y] ? y • 


③ 


① QJDDDDDDDDDDDDDDDDDDFireWII-iaDDDDDDDDDDDDDDDDDDD 
DDDDDDDD 

□ □□□□□□□□□□□□□□□□□□が:□□□□□□□□□□□刪□□□□凹 
感 □DDDDDDDDD 

□ □□□□□ Fi reWiI I - の□□□□□□□□□□□□□□□□□□没 H ： VWCQ □DDDDDDDD 

□ □ □ 










GJ □□□□□□□□□□□ 日 □(- 》 2) 

□ □□□□□□□□ Smart 店 shboarcO □□□□□□□□□□□□□□□ Snart CtehboarcCl □□□□□□□ 

□ □□□□□□□□□□a Snart Vi ewTrackerQ □□□□□□□□□□□□□□□□ SnartVi ewStatusQ 

□ □□□□□□□□凹 

1. □□□□□□□の FOMD □ □ □ □ Check Poi nt 賊 Generat i onQ CD ROMD □□□□□□ 

□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 

□□□□□□□□□□□□□□□□□□□□¥wrappers¥wi ndowsQQDDDDD 

□ clena)32. ex 田 □□□□□□□□□□ 

Wl CO 咕 □□DDDDDDD 

2. □ INbxtQ DDDDDDDD 

□ □□□□□□□□□□□□凹 

3. □□□□□□□□□□□□□□□□ Y 芭□□□□□□□凹 

□ □□□□□□□□□□□凹 

□ I nstal I ati on Cpti onsD □□□□□□□□□ 

4. □ ISfew I nstal I ati onQ □ □ □ □ □ □ INfextQ DDDDDDDD 
Product n □□□□□□□□□□□ 



vuwhHiU tall 


S 川 lirlClJIUK^ 

a か 

H uiii 

I aniBtai 

BnHtff IWK'Cft 
w rr, 



,VIWTJHh 1 


口 ;41 イ 
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■MLfCai 


I VIA livii ilMiun 
hmilhHCMBii Gul e 


Ultiq iNpanW i-iallglsirriKu^ 
Unwl け',■ ■"り 

11 lY.iiii^i iini 11 mrMrw ■ ホ . wflir 


5. ^fenagenent な nsol 近 [Snart ODnsol e][] □□□□□□□□ [l\fext]D □□□□□□□ 



s=91dG col 】 田 ll slu 



















6. □□□□□□□□ Product sD □□□□□□□□□ [SnartODnsol e]D □□□□□□□□□□□□ 

□ □ [l^]D □□□□□回 

Choose [test i nat i on Locati onQ □□□□□□□□□ 

7. □□□□□□□□□□□□□□□ [l^]D □□□□□凹 
□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 

8. [SnartC&shboardlD [SnartVi ewTracker ]〇 D D [SnartVi ewStatusJD □□□□□□ [INfextJD 

□ □□□□回 

DDDDDDDDDDDDDD 



9. □□□□□□□□□□□□□□□□□□□□□□□□凹 
□ □□□□□□ 田□田□□□□□□回 

10. SetupD □□□□□□回 

11.I nfornati onDDDDDDDDDDDDDDDCKDDDDDDDDD 

12. Srwt 故 hboarcO □ □ □ Dcpconfig □□□□□□□□□□□□□□□ □□□□Fi revel I □□□の 

□ □□□□□□□ の□□□□□□□□凹 

Srwt 臨 hboarcO □ □ □ □ Fi revel I □□□□□□□□□□□□□□□□□□□□□□□□□凹 

□ □□□□□□□□□□□□□□□凹 

SnartCBshboarcO □□□□□□□□□□□□□□□□□□□□□□□ Fi reWI I - の □ □ □ □ □ □ 
□□□□□DDDDDDD 




































DDDDDDDDDD ( 剛 □) (. の） 

□ □□□□□□□□□ 没削□□□□□□□□□□□□□□□□□□□□□江ドロ凹 

□ □没 HD □□□□□□□□□□□□□□□□岡 □□□□□□□□□(□□□□□凹 

□ □ の □□□□□□□□□□□□□□□□□□□ Fi revel I□□□ 岡□□□□□□□凹 

□ □□□□□□□□□□□□□□□□□□□□□□□ 岡□□□□□□□□□□□凹 

円 rewal IDDDDDDDDDD 

• 没削□□□□□□□凹 
• 岡 □ □ □ 

□□□□□□□□□□□□□□□ 

□□□□□□□□□□□□□□□□□□□□凹 

• □□□□凹の RCM 

• Check Poi rt l\bxt を nerati on( N3 wth 作 pi i cati on I ntel I i gence) 

• □□□□□□□□□□凹 

• □□□□□□□□□□凹 

• DDDDDDDDDD (DD) 



□ □□□□□□□□ (-》4) 

1. □□□□□□OSD □□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 
の明□□□□□□□□□□の ROMD □□□□凹 

DDDDDDDDD の明□□□□□□□□□□□□□凹 

□ □□□□□□□ 1の□□□□□凹 

□ □□□□□□□□□□□□の明□□□□□□□□□□□の明□□□□□凹 
□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 

2. □□□□凹の ROME □□□□□□□□□□□□□□□□□□□□凹 PCVIPQ □□□□□□□凹 
D CFFD □ D D 

3. □□□□□□□□□□□□□□□凹 PCVERQ 
□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 

□ revel ■□□□□□凹 

□ □ 


4. □□□□□□□□□□□□□□□□□□□□□□□□□没 H ] 田□□□□□□□□田 DPasswrcCD 

□ □□□□□□□□凹 

5. <0□□□□□□□□□□□□□□□□□□□□い 

□ □□□□□□□□□□□□□□□凹 

□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 



□□□□□□□□□□□□□□□い 

□ □□□2. □□□□□□□□□□□□ - □□□□□□□□□□□□□□□□□□□□□□□□凹 
□□DDDDDDD 




□ □ □ □ CD RQMD □ □ □ □ Check Poi rt hfext Generati onQ l\G wth 作 ) pi i cati on I rtel I i genceQ □ 
CDROMG □ □ □ D D FireVttll- の□□□□□□□□□□□□□□□凹 

# mount /dev/cdrom 

# cd /mnt / cdrom/linux/ 

# rpm -i ./CPshared-50/CPsh 亡 d—50—04.i386.rpm 

# rpm -i ./CPFirewalll-50/CPfwl-50-04.i386.rpm 

# cd / 

# umount /dev/cdrom 



心 ROME □□□□□□□□□凹 



8. cpconfigD □ □ □ □ Fi reWiI I - の □ □ □ □ □ □ 

cpconfigD □□□□□□□□2. □□□□□□□□□□□□ - aFireWI I- の □□□□□□□□□□□ 

□□DDDDDDDD 



9. □□□□□□□□□凹 

□□□□□□□□□□□□□□□□□□□□□□□□□い 
□ □□□□□□□□□□□Fi reWiI I - の□□□□凹 



Fi revai I-ID 0 D D D □□□□□□□□□□□□□□□□□□□□□□□□□□ 


<Enter5Q □□□□□□□□□□□□□□□□□□□□□□ 


□□□□□□□□□□□□□□□い 
Snart な shboar 年 ] □□□□□□□□□□□□□□ 


10. Siwt 店 shboar 虫 □□□□□□□□□□□□□□ 

□ □□ □ 

の FOC □ Q Q Q Check Poi nt ISb<t Gfenerati onQ N3 with i cati on I ntel I i genceQ D CDFCM 
□ □□□□□□□□□□ 円 revel 











Fi reWiI I- の □□□□□□□□□□□□□□□□ □ (. 》 5) 

□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□凹 

□ □□□□□□□□□□□□□□□□□□□□3〇凹2. □□□□□□□□□□□□ - QFi revWI I - IQ 

□ □□□□□□□□□□□□□□□□□□凹 


# cpconfig 

Welcome to Check Point Configuration Program 


Please read the following license agreement. 

Hit 'ENTER' to continue ，. ， . . の 


Do you accept all the terms of this license agreement (y/n) ? y . ③ 

Select installation type: 


{1)Stand Alone - install VPN-1 / Fire 师 all-1 Internet Gateway. 

(2) Distributed - select components of the Enterprise Product. 

Enter your selection ( 丄 一 2/a_abort) L 丄]こ 2 . ③ 

Select installation type: 


{1)Enforcement Module. 

(2) Enterprise SmartCenter. 

{3) Enterprise SmartCenter and Enforcement Module. 

{4) Enterprise Log Server. 

(5) Enforcement Module and Enterprise Log Server. 

Enter your selection i 丄 一 5/a—abort) L 丄 ]: 2 . ④ 


® Fi reWI I - の□□□□□□□□□□□□□□□□□□□凹 

② □□□□□□□□□□□□が却□□□凹 

③ □□□□□□□□□□□□□□□□□凹 
□□□□□□□□□□ 2□□□□□□□□□□□□□□凹 

® □□□□□□□□□□□□□□□□□凹 

□2 □□□□□□□□□□□□□□□□□□□□□□凹 















C \ 

Please select SmartCenter type: 


(1) Enterprise Primary SmartCenter. 

(2) Enterprise Secondary SmartCenter. 

Enter your selection (1—2/a-abort) [1]: 1 . 

This program will guide you through several steps where you 
will define your SVN Foundation configuration. 

At any later time, you can reconfigure these parameters by 
running cpconfig 

(D ) 

************* Installation completed successfully ************* 

Do you wish to start the installed product{s) now? (y/n) [y] ? y. 

cpstart : Power-Up self tests passed successfully 

(D ) 

FireWall-1 : This is a Management Station. No security policy will be loaded 
Firewall—1 started 

# shutdown -r now . 

V_ J 


① 


③ 


③ 


@ □□□□□□□□□□□□□□□□□□□□□□□凹 

□ の □□□□□Pri nar^ □DDDDDDD 
⑨□□□□□□□□□□□□凹 
感 D □ □ D D D 








Enforcement Module. 

Enterprise SmartCenter. 

Enterprise SmartCenter and Enforcement Module. 
Enterprise Log Server. 

Enforcement Module and Enterprise Log Server. 


Enter your selection (1-5/a-abort) [1]: 1 


Select installation type: 


{1)Stand Alone - install VPN-1 / Fire 师 all-1 Internet Gateway. 
(2) Distributed — select components of the Enterprise Product. 

Enter your selection ( 丄 一 2/a-abort) L 丄 ]: 2 . 


Select installation type: 


Do you accept all the terms of this license agreement (y/n) ? y 


Please read the following license agreement. 
Hit 'ENTER, to continue... .. 


FireralI DOOOOOnOO ■ 


① Fi reWI I - の□□□□□□□□□□□□□□□□□□□凹 
感 □□□□□□□□□□□□が或□□□凹 

③ □□□□□□□□□□□□□□□□□凹 

□ □□□□□□□□□ 2□□□□□□□□□□□□□□凹 

④ □□□□□□□□□□□□□□□□□凹 

nnnnnnnnnninnnnnnnnnnnnnnnn 


# cpconfig 


Welcome to Check Point Configuration Program 


FireWiM - の □□□□□□□□□日 （.》5) 

□ □□□□□□□□□□□□□□□□凹 

□ □□□□□□□□□□3〇凹2. □□□□□□□□□□□□ - D Fi reWI I -10 D D □ □ □ D D 

□□□□□□□□□□□□□□ 













Is this a Dynamically Assigned IP Address Module installation ? (y/n) [n] ?. 

Would you like to install a Check Point clustering product (CPHA, CPLS or State 

Synchronization)? (y/n) [n] ? y. 

Would you like to enable SecureXL acceleration feature? (y/n) [y] ? n. 

IP forwarding disabled 

Hardening OS Security : IP forwarding will be disabled during boot, 

Generating default niter 
Default Filter installed 

Hardening OS Security : Default Filter will be applied during boot. 

This program will guide you through several steps where you 
will define your VPN—1 & FireWall-1 configuration. 

At any later time, you can reconfigure these parameters by 
running cpconfig 

の） 


③[: ynanhcal I y Aesi gned I P Mdress Mxiul 田 □□□□□□□□□□□□□□□□□□□□ <&ter?Q 
□ □□□□凹 

® Check Poi nt cl usteri ng productQ □□□□□□□□□□□□□□□□□□□□ イ ： =0 □ □ □ □ □ 

⑤ SecureXm □□□□□□□□□□□凹 
SecureXm □□□□□□□ 刪□□□□凹 


(D ) 

Conriguring Secure Internal Communication 


The Secure Internal Communication is used for authentication between 
Check Point components 

Trust State : Uninitialized — 

Enter Activation Key : . ① 

Again Activation Key : 

The Secure Internal Communication was successfully initialized 

initial—module: 

Compiled OK. 

Hardening OS Security : Initial policy will be applied 
until the first policy is installed 

In order to complete the installation 
you must reboot the machine. 

Do you want to reboot? (y/n) [y] ? y. ③ 


田 


)Fi reWI I - の □ □ □ □ □ Fi revel I □□□□□□□□□□□□□□□□□□□□□□□凹 
り□□□□□□□□□凹 














